Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here. |
| Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
 |
01-14-2006, 08:10 PM
|
#1
|
|
Senior Member
Registered: May 2004
Location: Albuquerque, NM USA
Distribution: Debian-Lenny/Sid 32/64 Desktop: Generic AMD64-EVGA 680i Laptop: Generic Intel SIS-AC97
Posts: 4,250
Rep: 
|
How can I get info re. current active connections?
I had trouble figuring out the NAT firewall on my router when I first got it. Finally gave up, and put my PC in the DMZ, and used a software firewall (Firestarter). Eventually decided it wouldn't allow me to do some packet filtering I wanted. In the process of replacing it, I discovered how to use the NAT firewall, and now have it doing everything I want ... except one thing.
In Firestarter, I could view information about each currently active connection ... Servers I was accessing, Users on my FTP server, My mail connection, HTTP connections via a browser, etc. Info consisted of the remote IP address, port connection, and service. If my NAT firewall provides that info, I haven't been able to find it.
Is there a netstat flag, or some other method of displaying this info?
|
|
|
|
|
01-14-2006, 08:33 PM
|
#2
|
|
Member
Registered: Apr 2005
Location: Jordan
Distribution: Debian (Sarge), Ubuntu (6.06)
Posts: 271
Rep:
|
There's a couplt of things you'll probably enjoy:
1) iptstate
2) netstat
3) iptraf
The first two are commands so you should man them. The last is a simple program with a simple interface but is very helpful for monitoring connections in real-time.
|
|
|
|
|
01-14-2006, 09:16 PM
|
#3
|
|
Senior Member
Registered: May 2004
Location: Albuquerque, NM USA
Distribution: Debian-Lenny/Sid 32/64 Desktop: Generic AMD64-EVGA 680i Laptop: Generic Intel SIS-AC97
Posts: 4,250
Original Poster
Rep:
|
Ooh! iptraf does exactly what I want without any setup whatsoever. Plus it looks like it'll do lots more after I read the instructions.
|
|
|
|
|
01-14-2006, 11:53 PM
|
#4
|
|
Member
Registered: Apr 2005
Location: Jordan
Distribution: Debian (Sarge), Ubuntu (6.06)
Posts: 271
Rep:
|
I know.... I LOVE it  Best part is: It works over ssh.
Glad this info was of help. |
|
|
|
|
01-16-2006, 08:18 AM
|
#5
|
|
Member
Registered: Jun 2005
Location: Lilburn, Ga
Distribution: FC5
Posts: 175
Rep:
|
I often use netstat -an --inet for this. Or, just netstat -A inet. Another helpful one is netstat -pultw which lists all connections both tcp and udp.
|
|
|
|
All times are GMT -5. The time now is 07:42 AM.
|
|
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
|
 Latest Threads
LQ News
|
|
